Expert gives advice on how to protect yourself from social engineering attacks 01:00

Today, cyber threats have become a part of our daily lives, and one of the most dangerous methods of attack is social engineering. This is a set of methods for manipulating people in order to obtain confidential information or access resources. This is what Sergei Lipov, Director of Information Technology at EdgeCenter, told socialbites.ca.

“Social engineering includes many common attacks. Phishing – Attackers send fake emails that mimic messages from trusted sources (banks, social networks, etc.) to obtain personal information. Vishing (voice phishing) is an attack conducted via phone calls, where attackers pose as bank or organization employees to obtain confidential information. Smishing (SMS phishing) is an attack conducted via text messages containing links to fake sites or requests for personal data. Pretexting – where the attacker creates a fictitious story to gain access to information or resources. Baiting – Attackers leave infected devices (flash drives, disks) in public places, hoping the victim will connect them to their computer,” he explained.

Attackers also use a variety of psychological techniques for manipulation.

“Urgency: “If you do not verify your identity immediately, your account will be blocked.” The expert: “I am calling from the bank and we need to clarify your account information.” Trust: “I am a colleague in the IT department, I need to update your software.” Fear and panic: “Your computer has been infected with a virus, urgently reboot the system and install this update.” Curiosity and greed: “You have won a prize, follow the link and enter your details to claim it,” the expert said.

There are several rules for avoiding social engineering attacks. First and foremost, don’t give out personal information: Never give out sensitive information over the phone, email, or text without careful verification.

“Always verify the authenticity of the source of information, especially if the request contains financial data or passwords. Do not open links or attachments in emails from unknown senders. Apply additional layers of protection for access to important systems and data, use multi-factor authentication. Regularly update your antivirus programs and security systems to protect yourself from new threats,” Lipov advised.

By following these tips, you will significantly reduce the risk of becoming a victim of social engineering and protect your data and corporate resources. Remember that the key to security is constant education and attention, the expert says.

Russians before It has been recommended Use anonymizers in emails to protect data.

What are you thinking?



Source: Gazeta

Popular

More from author

Russia protested against Japan over its plans to conduct joint exercises with the USA 18:32

Japan's Embassy in Russia has protested against Tokyo's plans to hold joint exercises with the United States in areas close to Russia's borders. The...

Sber canceled the commission given to developers when issuing market mortgages 17:09

Starting from October 11, VTB and Sber canceled the commission that bank partner developers receive when issuing market mortgages. This was reported by TASS. This...